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WHAT IS CLAIMED IS: 

1 . An apparatus for collecting and transmitting biometric data over a network, the 
iparatus comprised of: 
\ a sensor to collect biometric data; and 

\ a biometric template generator, coupled to the sensor, to convert the biometric 
ta intosa biometric template. 

2. The appankdis of claim 1, further comprising an output interface, coupled to the 
biometric template generator, to output the biometric template to a network, 

3. The apparatus of cl^m 1, further comprising a security code generator coupled to 
the biometric template generator to sign the biometric template. 

4. The apparatus of claim 3, wherein the security code generator implements a signing 
technique using at least one of a k^umd a token. 

5. The apparatus of claim 3, further conWising an output interface, coupled to the 
biometric template generator, to output the signed biometric template to a network. 

6. The apparatus of claim 1, further comprising ak image processor coupled between 
the sensor and the biometric template generator to deWmine whether the biometric data 
is suitable for biometric template generation. \ 



7. The apparatus of claim 1, further comprising a biometric nuitcher to compare a two 
biometric templates to determine whether the two biometric templates match and to 
generate a match result. \ 
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8V The apparatus of claim 7, wherein the match result is signed. 




9. Th^ apparatus of claim 1, further comprising a security module to decrypt and 
validate aspreviously enrolled biometric template received via the network. 



10. The apparams of claim 9, wherein the received previously enrolled biometric 
template is signed^encrypted, and comprises a validation key. 

11. A cryptographic system, comprising: 

an imaging device ror collecting biometric data; 
a code generator to genis^ate a digital signature 
a key generator to generatbsat least one key; 
a private key storage device coupled to the key generator; and 
a public key storage device coupled to the key generator. 

12. The system of claim 11, further compris 

a signature validator to generate a public\ey; and 
an encryptor to encrypt data using the publib;^key; and 
a decryptor. 

13. The system of claim 11, wherein the key generator comprises logic to create an 
asymmetric key pair. 



14. A method of providing security to biometric data, comprising: 

generating a key pair comprising a public key and a private ^ey at an imaging 

device; 

storing the private key in a storage device at the imaging device; 
transmitting the public key from the imaging device to a certification authority; 
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\ generating an imaging device public key certificate at the certification authority; 
Vgenerating a certification authority public key certificate at the certification 
authorit\; and 

trJUMmitting the imaging device public key certificate and the certification 
authority piiblic key certificate to the imaging device. 

15. The method, of claim 14, further comprising storing the imaging device public key 
certificate and theVcertification authority public key certificate in the storage device at 
the imaging device. \ 

16. The method of claim 14, further comprising: 

generating an asymmetric key pair comprising a public key and a private key at 
server; \ 

storing the private key in a storage device at the server; 

transmitting the public keV fi"om the server to a certification authority; 

generating a server public k^ certificate at the certification authority; 

generating a second certification authority public key certificate at the 
certification authority; and 

transmitting the server public key certificate and the second certification 
authority public key certificate to the imaging device. 

17. A method of exchanging biometric informadon between an imaging device and a 
server, comprising: \ 

authenticating the server at the imaging device^ 
obtaining a biometric sample at the imaging device; 
signing the biometric sample at the imaging device\ 

generating a data package comprising the biomemc sample, a token, the 
signature, and an imaging device public key certificate; \ 
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steansmitting the data package to the server; 
receiving the data package at the server; 
authehricating the imaging device at the server; 
validatin^ythe signature and the token at the server. 

18. The method of clki^ 17, wherein authenticating the server at the imaging device 
comprises: 

sending a request for\^server public key certificate and the token from the 
imaging device to the server; 

generating the token at the ser 

retrieving the server public key c^ficate from a storage device; 

transmitting the server public key\^ficate and the token to the imaging 
device; and 

vaUdating die server public key certificate\t die imaging device. 

19. The method of claim 18. wherein validating the se^r public key certificate at the 
imaging device comprises using a certification authority public key certificate. 

20. The method of claim 17. fiirther comprising «icrypting the\a package using the 
server pubUc key certificate prior to transmitting die data package\the server, and 
decrypting the data package at die server. 



